Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2023-29257

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to remote code execution as a database administrator of one database may execute code or read/write files from another database within the same instance. IBM X-Force ID: 252011.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 44.2%
CVSS Severity
CVSS v3 Score 7.2
Products affected by CVE-2023-29257
  • Ibm » Db2 » Version: 10.5
    cpe:2.3:a:ibm:db2:10.5
  • Ibm » Db2 » Version: 11.1
    cpe:2.3:a:ibm:db2:11.1
  • Ibm » Db2 » Version: 11.1.0.0
    cpe:2.3:a:ibm:db2:11.1.0.0
  • Ibm » Db2 » Version: 11.1.1.1
    cpe:2.3:a:ibm:db2:11.1.1.1
  • Ibm » Db2 » Version: 11.1.2.2
    cpe:2.3:a:ibm:db2:11.1.2.2
  • Ibm » Db2 » Version: 11.1.3
    cpe:2.3:a:ibm:db2:11.1.3
  • Ibm » Db2 » Version: 11.1.3.2
    cpe:2.3:a:ibm:db2:11.1.3.2
  • Ibm » Db2 » Version: 11.1.3.3
    cpe:2.3:a:ibm:db2:11.1.3.3
  • Ibm » Db2 » Version: 11.1.4
    cpe:2.3:a:ibm:db2:11.1.4
  • Ibm » Db2 » Version: 11.5
    cpe:2.3:a:ibm:db2:11.5
  • Ibm » Db2 » Version: 11.5.5.0
    cpe:2.3:a:ibm:db2:11.5.5.0
  • Ibm » Db2 » Version: 11.5.6
    cpe:2.3:a:ibm:db2:11.5.6
  • Linux » Linux Kernel » Version: N/A
    cpe:2.3:o:linux:linux_kernel:-
  • Microsoft » Windows » Version: N/A
    cpe:2.3:o:microsoft:windows:-


Products
Pricing
Contact Us

Shodan ® - All rights reserved